OpenSSL releases security advisory

June 6, 2014
OpenSSL has released updates patching 6 vulnerabilities, which may allow an attacker to decrypt or modify traffic between a vulnerable client and server.

The following updates are available:

OpenSSL 0.9.8 SSL/TLS users should upgrade to 0.9.8za
OpenSSL 1.0.0 SSL/TLS users should upgrade to 1.0.0m
OpenSSL 1.0.1 SSL/TLS users should upgrade to 1.0.1h

#InfoSec
?

Embedded Link

OpenSSL Security Advisory [05 Jun 2014 …
OpenSSL Security Advisory [05 Jun 2014] ======================================== SSL/TLS MITM vulnerability (CVE-2014-0224) =========================================== An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL SSL/TLS clients and servers …

Tags:




Leave A Reply.

To comment or reply, please view the original post on Google+ by using the link provided above.



Switch to our mobile site